Описание
A vulnerability, which was classified as critical, has been found in SevOne Network Management System up to 5.7.2.22. This issue affects the Device Manager Page. An injection leads to privilege escalation. The attack may be initiated remotely.
Ссылки
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 5.7.2.0 (включая) до 5.7.2.22 (включая)
cpe:2.3:a:ibm:sevone_network_performance_management:*:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00444
Низкий
6.3 Medium
CVSS3
8.8 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-74
CWE-1236
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
A vulnerability, which was classified as critical, has been found in SevOne Network Management System up to 5.7.2.22. This issue affects the Device Manager Page. An injection leads to privilege escalation. The attack may be initiated remotely.
EPSS
Процентиль: 63%
0.00444
Низкий
6.3 Medium
CVSS3
8.8 High
CVSS3
6 Medium
CVSS2
Дефекты
CWE-74
CWE-1236